Plex tells users to reset their passwords after potential data breach

Plex users may want to change their passwords as soon as they are able to. The digital media player and streaming service said a bad actor has infiltrated its system Letter sent to user affected by the injury. In it, the company revealed that it immediately launched an investigation after seeing suspicious activity in one of its databases. Based on what it saw, Plex said it appears that a third party gained access to a subset of its data, which includes people’s emails, usernames, and encrypted passwords.

Even Troy Hunt from Have I Been Pwned was affected. As he noted in his tweet, there’s nothing anyone can do to be exempt from service hacks, but using a password generator and 2FA make their impact much less severe. It should be noted that while trying to change passwords, he encountered and found an error Not The switch was made by deregistering existing devices.

Plex said it had already addressed the method the bad actor used to infiltrate its system, but did not elaborate on what method it was or what vulnerability, if any, the hacker exploited. The company also pledged to conduct additional checks to ensure its systems are “further hardened to prevent future attacks.” Right now, Plex requires all users to change their passwords “as a precaution,” even if all passwords the hacker had access to have been hashed. It also assured all users in its letter that it does not store credit card numbers and other payment details on its servers, thus the bad actor could not gain access to them.

All products recommended by Engadget are selected by our editorial team independently from our parent company. Some of our stories contain affiliate links. If you buy something through one of these links, we may receive an affiliate commission.

https://www.engadget.com/plex-reset-passwords-potential-data-breach-082347517.html?src=rss Plex tells users to reset their passwords after potential data breach

Russell Falcon

USTimesPost.com is an automatic aggregator of the all world’s media. In each content, the hyperlink to the primary source is specified. All trademarks belong to their rightful owners, all materials to their authors. If you are the owner of the content and do not want us to publish your materials, please contact us by email – admin@ustimespost.com. The content will be deleted within 24 hours.

Related Articles

Back to top button